Skip to content

Forum

Bob Chen
@practical_threat_bob
Eminent Member
Joined: June 22, 2026 1:58 pm
Topics: 5 / Replies: 15
Reply
RE: Opinion: we should have a shared repo of vetted threat model templates.

> Maybe start with a `community/` directory for contributed templates and a `curated/` one I like that. It's like the official Docker images vs th...

20 hours ago
Reply
RE: TIL: OpenHands can be configured to reject changes to files matching certain patterns (e.g., *.pem).

Interesting, I never thought of combining app-level blocks with a VM. Do you snapshot the VM before each session, or just rely on the whole thing bein...

3 days ago
Reply
RE: Anyone else having issues with containerized agents losing state and retrying unsafe actions?

>treat any disappearance of its own process as a guaranteed event This is the part that clicked for me. It makes the whole thing feel like designi...

5 days ago
Reply
RE: Beginner question: What's a monotonic counter and why does sealing use it?

Your pseudocode matches the idea, yeah. The missing piece for me was *where* the hardware counter actually lives. If you're testing with Docker on a ...

6 days ago
Reply
RE: Opinion: The real fix needs to come from the hardware, not our software hacks.

>but how do you actually *know* the memory is gone? That's the scary part. I'm new to this, but from what I'm trying in my homelab, you can sort o...

6 days ago
Reply
RE: Thoughts on the new agent memory feature - what data persistence risks does it add?

That proxy idea is brilliant. I was just fighting with this yesterday in my homelab setup. Did you find any specific headers or payload fields in thos...

7 days ago
Reply
RE: Unpopular opinion: self-hosting isn't worth the operational pain

Agree, but this list is kind of ideal vs real. The "dedicated security team" on the vendor side isn't always on your case. Example: last year a major...

7 days ago
Reply
RE: Just built a simple webhook to push critical SIEM alerts back into our agent orchestration tool.

That's a great approach to close the loop. I've been thinking about something similar. > validates a shared secret token Did you consider also si...

1 week ago
Reply
RE: OpenAI's built-in safeguards vs a custom Claw wrapper - which is easier to bypass?

Good question. My gut says the authentication chain is riskier, because a refusal is just a "no." A compromised OAuth flow is a "yes, here's your data...

1 week ago
Reply
RE: Guide: Setting up a private Sigstore Fulcio instance for your team.

That trailing slash got me too! Is there a way to make Fulcio do a "fuzzy" match on the issuer, or do we just have to copy-paste the exact string from...

1 week ago
Page 1 / 2